www.vigonza.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:99:48:47:fe:96:f3:8e:74:8d:4a:37:46:77:35:42:ef:36 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.vigonza.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:99:48:47:fe:96:f3:8e:74:8d:4a:37:46:77:35:42:ef:36Serial Number (int): 313496138166649435545296474416746657410870
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: db:52:4d:ff:ec:7d:dd:26:b9:74:2e:fd:8c:25:a8:38:04:9f:7f:6b
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 53:4c:3e:5e:8b:1a:c2:b7:c9:3b:37:56:44:23:47:2f:e1:a8:f5:67
Fingerprint (sha256): 4e:d1:10:50:ed:77:96:b5:cc:32:36:c3:75:3a:da:ed:69:f5:60:13:22:5b:79:14:f2:a6:fd:e3:a3:b4:37:27
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.vigonza.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.vigonza.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.vigonza.org
Other certificates including the domain name vigonza.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.vigonza.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVTCCBT2gAwIBAgISA5lIR/6W8450jUo3Rnc1Qu82MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MjgxOTQwMDFaFw0x OTEwMjYxOTQwMDFaMBoxGDAWBgNVBAMTD3d3dy52aWdvbnphLm9yZzCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAPtSSfLUNx2ckgx7HeVw1b+fLJB7S2A3 8Phmgjr6+KB1NgeOWYT9qvyAd6r61R8q8AByz6I1JSetFzJxdDiHPpJA3DDUMepy PnK32TC89E20XLlsRSFthYnbMU2ohd6oFl09KlAjcJufX2GuKxWlx9aKnmBkUCqL 4dkV3tnr3zBA+sf+UFd4M1AzQJgueDa1OkH1e1mf3LHrEh1TneaGLaVqaONIDkHt Izm0QKxp3fNZfE4ksVqyn4Sy0HumxNf1B52KVJqx22eGku7FbPwDzqJRmNlDkXFU gQRWu5SjmSB8Z3p4j8aHv4QNpEGefQGfZn8GBtj/OuFN0PoqeSJwH74rmqPcRhIS AAkzkSZHTQmuesPyoAXrokGTzz4kKQesyIzyIqnjGm6bmtNwopBwbxgKwLOcqyPO oG8d/xYlcYN7MDxbJNmJQnGyLsI1vH5Ut976XFfms2bj0yy0NcwLIJRc7YKPiZtS fjW2/XXwbGfePkMmG+XUkSZaaX79hozhqrXBkUIDWnsUz+DcIGAClo1wRlf8saqU +pYOaPZhsvngEfYlYpMUo50rH9e/kExex25pAnTLUQBC+lwXcSXMKiOJpqSvDenu KVf7fCBGyA8z79oENDkxv3uX4mJNlI80VXGCgrCNK5MX71CA36puk8qaUjbS/h3Q jYEfupEkWzabAgMBAAGjggJjMIICXzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFNtS Tf/sfd0muXQu/YwlqDgEn39rMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPd3d3LnZpZ29uemEub3Jn MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB 9ASB8QDvAHYA4mlLribo6UAJ6IYbtjuD1D7n/nSI+6SPKJMBnd3x2/4AAAFsOk/G lwAABAMARzBFAiEAtm6+8Mh+olQ7JBlZG6rptGmaul1oxwspIyOxgQZiJrMCIAzH XyLN7jgHmBaJhtgQZIf6WBLVQwoaxw98ZRn9aDFKAHUAY/Lbzeg7zCzPC3KEJ1dr M6SNYXePvXWmOLHHaFRL2I0AAAFsOk/EwAAABAMARjBEAiBvvaUYLM0V7c5RcDdf Yf17c/r0sUhjJeRfhaOv3YiFjwIgX3Y4/yWgNccmCZxwHato8C+gG8Fa0O2Xd04u MuwYrjMwDQYJKoZIhvcNAQELBQADggEBAA172gC/fLBYdmbM5N0Lrej3WuPPIYre 7pLEaLj6vbbmg2j0tDMGa/vPDC9u3LZxJqtcpaSjnA/blUJRJ/FsUrTM96cbgrk2 04CCyfxLstpBpYAqvA7LZcsHpwmPpPH0CjeDTpbGmxp9BaFWT5R4G9UtjNdkplLs lXiixuuxwtGFYWq2dkLNJTyREwdY8/x/hgH2ci8zp8Lif01OFO0gu60+3tu2S0F/ baULlKbWBzdZa6BaZ9SVxTcY5hnDsfp18SHtP0en88Hez74SyMW/1Tl9O7S0chfm ZdBGII9U9ZjIFDJ/CO08iGj5LfMA759qALoQh/TxR5jqDYSclD8BZKw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA+1JJ8tQ3HZySDHsd5XDV v58skHtLYDfw+GaCOvr4oHU2B45ZhP2q/IB3qvrVHyrwAHLPojUlJ60XMnF0OIc+ kkDcMNQx6nI+crfZMLz0TbRcuWxFIW2FidsxTaiF3qgWXT0qUCNwm59fYa4rFaXH 1oqeYGRQKovh2RXe2evfMED6x/5QV3gzUDNAmC54NrU6QfV7WZ/csesSHVOd5oYt pWpo40gOQe0jObRArGnd81l8TiSxWrKfhLLQe6bE1/UHnYpUmrHbZ4aS7sVs/APO olGY2UORcVSBBFa7lKOZIHxneniPxoe/hA2kQZ59AZ9mfwYG2P864U3Q+ip5InAf viuao9xGEhIACTORJkdNCa56w/KgBeuiQZPPPiQpB6zIjPIiqeMabpua03CikHBv GArAs5yrI86gbx3/FiVxg3swPFsk2YlCcbIuwjW8flS33vpcV+azZuPTLLQ1zAsg lFztgo+Jm1J+Nbb9dfBsZ94+QyYb5dSRJlppfv2GjOGqtcGRQgNaexTP4NwgYAKW jXBGV/yxqpT6lg5o9mGy+eAR9iVikxSjnSsf17+QTF7HbmkCdMtRAEL6XBdxJcwq I4mmpK8N6e4pV/t8IEbIDzPv2gQ0OTG/e5fiYk2UjzRVcYKCsI0rkxfvUIDfqm6T yppSNtL+HdCNgR+6kSRbNpsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 313496138166649435545296474416746657410870 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-28 19:40:01 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-26 19:40:01 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.vigonza.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 1025302025392538414517197369868339271485345911473307947518006739569316242320451129704706027048763207159742868852261252422666354779989008759072981263591596361712388077299413664898195006412328899977965747520167184819483472621520092540362978899708291230321275322669996971468858261656953500388965452661865754654493825943140169441604928393661896099161761759964564784561811164894879096607138050339286872189874741075628703260778507234826573744555366238928213906355350570039172113542183337884160619344251471296585697573945773431953263227995644121269381945079563403222135763949167068853823993395464342913853938088836276860946816726801559624139649049669050514139001827210842597045983303527148291324976281611031604069090260163722984173788804037896275390989896796347729269026011325293595146099918451762042160902111529428054347015141247891827525124970913784446529286447636598798460890184377337634713245867601017056535933752991029834740783273120886418940708804972143437481516586848036127566549821850979689570397532033928562467608487026440525445004128147144675844699429971112158413003867723029602663429303842977658570526767128709897491540389414974945122457365825523797775773475223082363202165440561078582087545622991355262546109214710019597333640859 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) db524dffec7ddd26b9742efd8c25a838049f7f6b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.vigonza.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016c3a4fc6970000040300473045022100b66ebef0c87ea2543b2419591baae9b4699aba5d68c70b292323b181066226b302200cc75f22cdee380798168986d8106487fa5812d5430a1ac70f7c6519fd68314a00750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016c3a4fc4c0000004030046304402206fbda5182ccd15edce5170375f61fd7b73faf4b1486325e45f85a3afdd88858f02205f7638ff25a035c726099c701dab68f02fa01bc15ad0ed97774e2e32ec18ae33 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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